SEARCH
All Articles
Decipher Podcast: The Microsoft Recall Recall
A few days after Microsoft announced the new AI-enabled Recall feature--generating tremendous concerns and pushback from the security and privacy communities--the company had decided to disable it by default, but many concerns still remain. A month after the company's CEO proclaimed that it would be "prioritizing security above all else", how did this happen?
Mandiant: 165 Snowflake Customers ‘Potentially Exposed’ in Campaign
Researchers with Mandiant said that since at least April 14, the threat group behind the attack has used stolen credentials to access over 100 customer tenants. Some of the credentials were stolen via infostealer malware as early as 2020.
The Emerging Ecosystem Dedicated to AI Accountability
A new ecosystem of security researchers is emerging, looking to sniff out data security and privacy issues in AI systems and grappling with issues like a lack of transparency into and understanding of LLMs.
After Backlash, Microsoft Recall Will be Disabled by Default
Microsoft said the controversial Copilot Plus PC Recall feature will no longer be enabled by default after backlash from security and privacy experts.
Critical PHP Flaw CVE-2024-4577 Patched
A critical remote code execution bug (CVE-2024-4577) in all versions of PHP on Windows has been patched. The bug also affects all Windows versions of XAMPP.
Wyden Pushes HHS to Mandate Healthcare Cybersecurity Standards
Wyden said the Change Healthcare ransomware attack demonstrates how the HHS’ current self-regulatory approach to cybersecurity is “insufficient.”
The Challenge of Reporting on Complex Breaches
Veteran security journalist and podcaster Ryan Naraine joins the Decipher podcast to discuss the challenges of separating fact from fiction when reporting on complex incidents such as the Snowflake breach.
Exploit Attempts Against Check Point CVE-2024-24919 On the Rise
Hundreds of separate IP addresses are now trying to exploit the Check Point patch traversal flaw (CVE-2024-24919) that was disclosed lat week.
Synnovis Ransomware Attack Disrupts Healthcare Services
Synnovis is experiencing a ransomware attack impacting all IT systems and resulting in interruptions to many of the organization’s pathology services across top hospitals in London.
Decipher Podcast: Garrett Yamada
Garrett Yamada, associate director of identity security at Texas A&M University, talks about his experiences navigating identity challenges.
Researchers Warn of Potential Abuse of Azure Service Tags
Tenable researchers discovered a technique for abusing Azure service tags to bypass firewall rules and Microsoft has issued new guidance for customers.
Snowflake: Customer Accounts Targeted in ‘Identity-Based Attacks’
Ticketmaster and others companies are reportedly wrapped up in a series of attacks that target accounts without MFA.
Operation Endgame Targets Trickbot, IcedID, Other Botnets in Huge Disruption
Europol and other agencies disrupted several major malware families, including IcedID, Bymblebess, Trickbot, and Smokeloader in an action dubbed Operation Endgame.
Wyden: SEC, FTC Should Investigate UnitedHealth’s ‘Negligent’ Security Practices
The senator called for investigations into “negligent cybersecurity practices” by UnitedHealth Group after a ransomware attack on its subsidiary Change Healthcare.
Check Point Releases Fix For Zero-Day VPN Flaw
The flaw (CVE-2024-24919) could enable attackers to read certain information on Gateways if they are connected to the Internet and enabled with Remote Access VPN or Mobile Access.